LSN-0097-1

Description

Kernel Live Patch Security Notice It was discovered that the IP-VLAN network driver for the Linux kernel did not properly initialize memory in some situations, leading to an out-of- bounds write vulnerability. An attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2023-3090) Querijn Voet discovered that a race condition existed in the io_uring subsystem in the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2023-3389) It was discovered that the netfilter subsystem in the Linux kernel did not properly handle some error conditions, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2023-3390) Mingi Cho discovered that the netfilter subsystem in the Linux kernel did not properly validate the status of a nft chain while performing a lookup by id, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2023-31248) Shir Tamari and Sagi Tzadik discovered that the OverlayFS implementation in the Ubuntu Linux kernel did not properly perform permission checks in certain situations. A local attacker could possibly use this to gain elevated privileges.(CVE-2023-32629) Tanguy Dubroca discovered that the netfilter subsystem in the Linux kernel did not properly handle certain pointer data type, leading to an out-of- bounds write vulnerability. A privileged attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2023-35001) Hangyu Hua discovered that the Flower classifier implementation in the Linux kernel contained an out-of-bounds write vulnerability. An attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2023-35788)

Affected Systems

• ubuntu•linux

  < 5.15.0-78.85 | all | < 4.4.0-243.277 | < 5.4.0-155.172 | < 5.15.0-177.187

• ubuntu•linux-aws

  < 5.15.0-1040.45 | all | < 4.4.0-1159.174 | < 5.4.0-1106.114 | < 5.15.0-1106.113

• ubuntu•linux-aws-5.15

  < 5.15.0-1040.45~20.04.1 | all | < 5.15.0-1106.113~20.04.1

• ubuntu•linux-aws-5.4

  all | < 5.4.0-1106.114~18.04.1

• ubuntu•linux-aws-6.2

  all | < 6.2.0-1008.8~22.04.1

• ubuntu•linux-aws-hwe

  all | < 4.15.0-1159.172~16.04.1

• ubuntu•linux-azure

  < 5.15.0-1042.49 | all | < 5.4.0-1112.118 | < 5.15.0-1111.120

• ubuntu•linux-azure-5.4

  all | < 5.4.0-1112.118~18.04.1

• ubuntu•linux-gcp

  < 5.15.0-1038.46 | all | < 5.4.0-1109.118 | < 5.15.0-1106.115

• ubuntu•linux-gcp-5.15

  < 5.15.0-1038.46~20.04.1 | all | < 5.15.0-1106.115~20.04.1

• ubuntu•linux-gcp-5.4

  all | < 5.4.0-1109.118~18.04.1

• ubuntu•linux-gke

  < 5.15.0-1038.43 | all | < 5.4.0-1104.111 | < 5.15.0-1102.108

• ubuntu•linux-gke-5.15

  all | < 5.15.0-1038.43~20.04.1

• ubuntu•linux-gke-5.4

  all

• ubuntu•linux-gkeop

  all | < 5.4.0-1073.77

• ubuntu•linux-gkeop-5.4

  all

• ubuntu•linux-hwe

  all | < 4.15.0-214.225~16.04.1

• ubuntu•linux-hwe-5.15

  < 5.15.0-78.85~20.04.1 | all | < 5.15.0-177.187~20.04.1

• ubuntu•linux-hwe-5.4

  all | < 5.4.0-155.172~18.04.1

• ubuntu•linux-ibm

  < 5.15.0-1034.37 | all | < 5.4.0-1053.58 | < 5.15.0-1100.103

• ubuntu•linux-ibm-5.4

  all | < 5.4.0-1053.58~18.04.1

• ubuntu•linux-lowlatency-hwe-5.15

  < 5.15.0-78.85~20.04.1 | all | < 5.15.0-177.187~20.04.1

• ubuntu•linux-lts-xenial

  all | < 4.4.0-243.277~14.04.1

References (8)

• https://ubuntu.com/security/notices/LSN-0097-1
• https://ubuntu.com/security/CVE-2023-3090
• https://ubuntu.com/security/CVE-2023-3389
• https://ubuntu.com/security/CVE-2023-3390
• https://ubuntu.com/security/CVE-2023-31248
• https://ubuntu.com/security/CVE-2023-32629
• https://ubuntu.com/security/CVE-2023-35001
• https://ubuntu.com/security/CVE-2023-35788